CVE-2006-5862

Properties

Published:
09.11.2006
Updated:
14.11.2006
Patch available:
Severity:
Medium
CVSS vector:
(AV:L/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Product:
Network Administration Visualized: Network Administration Visualized

Vulnerability description

Directory traversal vulnerability in the session mechanism of the web interface for Network Administration Visualized (NAV) before 3.1.1 allows attackers with filesystem write access to have an unknown impact via unknown attack vectors.

References:

http://sourceforge.net/project/shownotes.php?release_id=461986: http://sourceforge.net/project/shownotes.php?release_id=461986
BID: http://www.securityfocus.com/bid/20995
FRSIRT: http://www.frsirt.com/english/advisories/2006/4447
SECUNIA: http://secunia.com/advisories/22766
XF: http://xforce.iss.net/xforce/xfdb/30174